libyal / libsigscan

Related projects: ⓘ

• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆30Updated 7 years ago
• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆33Updated last year
• edix / MalwareResourceScanner
  Scanning and identifying XOR encrypted PE files in PE resources
  ☆27Updated 10 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆36Updated 7 years ago
• 0xdabbad00 / OpenHIPS
  OpenHIPS prevents exploitation of Windows systems
  ☆33Updated 11 years ago
• Rootkitsmm-zz / WinIo-Vidix
  Exploit WinIo - Vidix and Run Shellcode in Windows Kerne ( local Privilege escalation )
  ☆28Updated 9 years ago
• gamebooster / ida-map-loader
  ☆11Updated 9 years ago
• exet0l / FileAnalyzer
  ☆11Updated this week
• Cr4sh / SimpleUnpacker
  Simple tool for unpacking packed/protected malware executables.
  ☆32Updated 12 years ago
• tandasat / cs_driver
  A sample project for using Capstone from a driver in Visual Studio 2015
  ☆34Updated 8 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 10 years ago
• univm / univm
  A plugin for x64dbg for x86 emulation powered by the Unicorn-engine.
  ☆29Updated 8 years ago
• Prevenity / malware_monitor
  Malware monitor template based on MinHook
  ☆16Updated 9 years ago
• Microwave89 / injector
  Code Injector Using Code Caves
  ☆14Updated 9 years ago
• tandasat / DrvLoader
  A command line tool to load and unload a device driver.
  ☆42Updated 7 years ago
• libyal / libmsiecf
  Library and tools to access the Microsoft Internet Explorer (MSIE) Cache File (index.dat) files
  ☆16Updated last month
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 7 years ago
• sogeti-esec-lab / REBoot
  Bootkits Revisited
  ☆41Updated 10 years ago
• wirepair / IDAPinLogger
  Logs instruction hits to a file which can be fed into IDA Pro to highlight which instructions were called.
  ☆41Updated 11 years ago
• Captainarash / Reverse-Engineer
  ☆37Updated this week
• maldevel / PEdumper
  Dump Windows PE file information in C
  ☆22Updated 9 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆49Updated 9 years ago
• dzzie / HookExplorer
  ☆48Updated this week
• ambray / Ntfs
  Various libraries focused on examining/parsing NTFS-specific structures
  ☆16Updated 8 years ago
• jbremer / godware
  Short for Good Ware; it assists Reverse Engineers in the analysis of Windows Malware.
  ☆24Updated 12 years ago
• Cr4sh / DbgCb
  Engine for communication with remote kernel debugger (KD, WinDbg) from drivers and applications
  ☆36Updated 11 years ago
• crackinglandia / aadp
  Anti-Anti-Debugger Plugins
  ☆18Updated 11 years ago
• edix / HiddenProcessDetection
  Examples for detection of hidden processes on windows
  ☆33Updated 10 years ago
• tandasat / CVE-2014-0816
  CVE-2014-0816
  ☆24Updated 7 years ago